General
-
Target
13c887d96af718be5a9f60395694754823d291dc2e6c4fde3de34c4c987a7063N
-
Size
72KB
-
Sample
240927-28e2zavbrn
-
MD5
a3188aae76d8c959aa0cf338b7468300
-
SHA1
caa8ad9d7b988f86309b8a5ddfa68e8ad367fd53
-
SHA256
13c887d96af718be5a9f60395694754823d291dc2e6c4fde3de34c4c987a7063
-
SHA512
b0b0739019ba5110db85b62fa4e9edc65bfbf36dff5269490c118599c360f2805ab70dad755c8c553daf38643f8d3ac41af3242062df12b6cd3c266612ed8b00
-
SSDEEP
768:s1ZSPvZYKHYZjXRIEeVFxhmmvdgZXjYt1NEDIefZsL:s7zKHCjBuV1mHJMt1y
Malware Config
Targets
-
-
Target
13c887d96af718be5a9f60395694754823d291dc2e6c4fde3de34c4c987a7063N
-
Size
72KB
-
MD5
a3188aae76d8c959aa0cf338b7468300
-
SHA1
caa8ad9d7b988f86309b8a5ddfa68e8ad367fd53
-
SHA256
13c887d96af718be5a9f60395694754823d291dc2e6c4fde3de34c4c987a7063
-
SHA512
b0b0739019ba5110db85b62fa4e9edc65bfbf36dff5269490c118599c360f2805ab70dad755c8c553daf38643f8d3ac41af3242062df12b6cd3c266612ed8b00
-
SSDEEP
768:s1ZSPvZYKHYZjXRIEeVFxhmmvdgZXjYt1NEDIefZsL:s7zKHCjBuV1mHJMt1y
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2